CVE-2018-9031

The login interface on TNLSoftSolutions Sentry Vision 3.x devices provides password disclosure by reading an "if(pwd ==" line in the HTML source code. This means, in effect, that authentication occurs only on the client side.
Configurations

Configuration 1

cpe:2.3:a:tnlsoftsolutions:sentry_vision:3.1:*:*:*:*:*:*:*
cpe:2.3:a:tnlsoftsolutions:sentry_vision:3.2:*:*:*:*:*:*:*
cpe:2.3:a:tnlsoftsolutions:sentry_vision:3.0:*:*:*:*:*:*:*

Information

Published : 2018-03-29 04:29

Updated : 2019-10-03 12:03


NVD link : CVE-2018-9031

Mitre link : CVE-2018-9031

Products Affected
No products.
CWE